Full Time Employee
Cyber Info Assurance Anlyst - JRDC 13384 (Job Number:419384)
Network Security Engineer responsible for providing thought leadership and subject matterexpertise around a wide range of cybersecurity technologies. Candidate to lead a small team orshift for collaborative cyberspace defense. Candidate to perform Computer Network Defense(CND) Protection scanning analysis of network vulnerability scan (VS) results; determine impactsto network ops; provide recommended mitigation activities to Local Control Centers (LCC), review
corrective/mitigation actions; coordinate reports and assist in risk analysis. Candidate mustcoordinate with other engineers of different teams to corroborate findings and create solutions for better network security and defense. Candidate must be well versed in advanced engineering and administration of network security devices; to include research, evaluation, development, and implementation of network security solutions to meet DoD standards and best practices.
Candidate will use HBSS, prepare alerts and warnings for ISSM, respond to malware reports, and assist in implementing measures. Candidate will organize and manage the IAVM program to include dissemination, monitoring, and tracking IAVM notifications to ISSMs; review IAVM Plans of Action and Milestones and provide technical assistance. Candidate will interpret higher headquarters’ guidance to assist in the development/maintenance of policies and procedures,
while evaluating new and existing security technologies; develop, review and update cyberspace defense and incident management procedures, Operating Instructions, internal processes, and other MDA CERT/CSP documentation. Maintain knowledge of applicable DOD Cybersecurity policies, regulations and compliance documents specifically related to MDA assets. The candidate must be available to work shifts in a 24-hour operations center to include nights, weekends and holidays.
Perform assessments of systems and networks within the networking environment or enclave and identify where those systems and networks deviate from acceptable configurations, enclave policy, or local policy. This is achieved through passive evaluations such as compliance audits and active
evaluations such as vulnerability assessments. Establishes strict program control processes to ensure mitigation of risks and supports obtaining certification and accreditation of systems. Includes support of process, analysis, coordination, security certification test, security documentation, as well as investigations, software research, hardware introduction and release,
emerging technology research inspections and periodic audits. Assist in the implementation of the required government policy (i.e., NISPOM, DCID 6-3), make recommendations on process tailoring, participate in and document process activities. Perform analyses to validate established security requirements and to recomend additional security requirements and safeguards. Support the formal Security Test and Evaluation (ST&E) required by each government accrediting authority through pre-test preparations, participation in the tests, analysis of the results and preparation of required reports. Document the results of Certification and Accreditation activities and technical or coordination activity and prepare the system Security Plans and update the Plan of Actions and Milestones POA&M. periodically conduct a complete review of each system's audits and monitor
corrective actions until all actions are closed.
- Master’s degree in Information Technology, Cybersecurity, or related discipline
- 6 years progressive cybersecurity experience
- 10 years of experience in related IT field, i.e., servers,
- routers, firewalls
- Must have DoD 8570.01-M IAT Level III with Continuing Education (CE)
- Must be able to obtain and maintain a DoD 8570.01-M CND-Auditor certification (CISA, GSNA, or CEH)
- Candidate must have a DoD Secret security clearance to start; must have or be able to obtain a DoD
- Top Secret clearance
- Experience with security analysis and solutions in a WAN/LAN
- Proven aptitude in oral and written communications
- Experience leading a team
- Must be willing to work shifts in a 24x7 operational environment, which may include extended hours at no notice, evenings, nights, holidays, and weekends
- Must be willing to travel; travel is infrequent and often less than two weeks if needed
Experience performing security compliance scans across a WAN (ACAS preferred); strong HBSS background, strong technical writing aptitude, and ability to train on the use of tools in understandable terms. Ability to work as part of an integrated network operations and support team. Familiarity with CERT/CSP security policies and procedures to include experience with vulnerability assessment tools (e.g. ACAS, HBSS, etc.). Experience briefing high level managers
SAIC Overview:SAIC is a premier technology integrator providing full life cycle services and solutions in the technical, engineering, intelligence, and enterprise information technology markets. SAIC is Redefining Ingenuity through its deep customer and domain knowledge, talented people, effective processes, and innovation to enable the delivery of systems engineering and integration offerings for large, complex projects. SAIC's approximately 15,000 employees are driven by integrity and mission focus to serve customers in the U.S. federal government, state/local, and global commercial markets. Headquartered in McLean, Virginia, SAIC has annual revenues of about $4.4 billion. For more information, visit http://www.saic.com. For ongoing news, please visit our newsroom (http://investors.saic.com/news-releases).
SAIC is an Equal Opportunity Employer
Job Posting: May 31, 2016, 2:10:18 PM
Primary Location: United States-CO-COLORADO SPRINGS
Clearance Level Must Currently Possess: Secret
Clearance Level Must Be Able to Obtain: Secret
Potential for Teleworking: No
Shift: Day Job
To apply for this job, contact: